I'm a contractor working with the government on a zero-day defense pilot utilizing FireEye's MPS suite and Palo Alto's WildFire. We've enjoyed working with both vendors. What are your thoughts on the black market buying and selling of zero-days? What do you foresee changing in the signature-based based industry now that behavior-based analysis is becoming more of an ideal solution (perhaps why those previously mentioned vendors are a little more tight-lipped)? I ask these questions with the recent news that certain power-house software company's (notably Microsoft) are identifying these zero-days and offering them to the government before creating/supplying consumers with a security patch. Thanks so much for everything you two have contributed! HACK ON!
mylogic23 karma
I'm a contractor working with the government on a zero-day defense pilot utilizing FireEye's MPS suite and Palo Alto's WildFire. We've enjoyed working with both vendors. What are your thoughts on the black market buying and selling of zero-days? What do you foresee changing in the signature-based based industry now that behavior-based analysis is becoming more of an ideal solution (perhaps why those previously mentioned vendors are a little more tight-lipped)? I ask these questions with the recent news that certain power-house software company's (notably Microsoft) are identifying these zero-days and offering them to the government before creating/supplying consumers with a security patch. Thanks so much for everything you two have contributed! HACK ON!
View HistoryShare Link